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DETAILED ACTION 

1 . The IDS of 7/5/2005 was received and considered. 

2. Claims 1-16 are pending. 

Claim Rejections - 35 USC § 102 

3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or on 
sale in this country, more than one year prior to the date of application for patent in the United States. 

4. Claims 1-6, 8-13 & 15-16 are rejected under 35 U.S.C. 102(b) as being anticipated by 
U.S. Patent 5,310,999 to Claus et al. (Claus). 

Regarding claim 1, Claus discloses a method of encrypting identification tags of the type 
having a data storage for storing a fixed tag UID (Card ID, col. 9, lines 34-39) unique to each of 
said tags and variable user data (variable data frame, col. 9, lines 61-65), said tag UID and said 
user data being readable by a tag reader, said method comprising the steps of: providing an 
identification tag (transponder) having a permanent UID stored thereon (Card ID, col. 9, lines 
34-39 & col. 10, lines 18-20), providing an encryption engine operative for encrypting user data 
with an encryption key (variable data frame is encrypted, col. 9, line 61 - col. 10, line 12), 
entering said UID to provide part or all of said encryption key (col. 9, lines 34-39), entering user 
data (variable data frame) for encryption by said engine (col. 9, line 61 - col. 10, line 12), 
encrypting said user data with said encryption key (secret code) to derive encrypted user data 
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(col. 10, lines 10-12 & Fig. 14) and storing said encrypted user data (variable data frame in said 
data storage of said identification tag (col. 9, lines 63-65). 

Regarding claim 2, Claus discloses wherein said tag is an RFID tag (transponder, col. 9, 
lines 24-25) and said data storage is readable by an RFID reader (antenna/Plaza, col. 9, lines 21- 
25 & Fig. 3, #320). 

Regarding claim 3, Claus discloses wherein said encryption engine (Plaza reader) 
comprises an encryption algorithm running on a digital processor platform (Plaza) enabled for 
reading an writing to said data storage (col. 9, line 61 - col. 10, line 12). 

Regarding claim 4, Claus discloses wherein said digital processor platform is operatively 
associated with an RFID reader for reading and writing to said data storage (col. 9, lines 24-25 & 
Fig. 3, #320). 

Regarding claim 5, Claus discloses wherein said encryption algorithm is a DES 
encryption algorithm (col. 9, lines 5 1 -52). 

Regarding claim 6, Claus discloses wherein said encryption key (secret code) is a final 
key based on a combination of said tag UID (Card ID) and a private key (secret algorithm, col. 9, 
lines 36-39). 

Regarding claim 8, Claus discloses providing a decryption engine (Plaza/reader, Fig. 3, 
#320) operative for decrypting said encrypted user data (variable data frame) with an encryption 
key (secret code, col. 9, lines 40-60), presenting an encrypted identification tag for reading (col. 
9, lines 40-60), reading said tag UID (Card ID) and said encrypted user data stored on said 
encrypted identification tag (variable data frame, col. 9, lines 40-56), providing said tag UID to 
said decryption engine (Plaza/reader) for deriving said encryption key (secret code, col. 9, lines 
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36-39), providing said encrypted user data (variable data frame) to said decryption engine 
(Plaza/reader) for decryption with said decryption key (secret code, col. 9, lines 52-60) and 
decrypting said encrypted user data with said decryption engine to derive decrypted user data 
(variable data frame, col. 9, lines 35-60). 

Regarding claim 9, Claus discloses wherein said encrypted identification tag is an RFID 
tag (transponder, col. 9, lines 24-25) and said tag is readable by an RFID reader (antenna/Plaza, 
col. 9, lines 2 1 -25 & Fig. 3, #320). 

Regarding claim 10, Claus discloses wherein said decryption engine (Plaza/reader) 
comprises a decryption algorithm running on a digital processor platform enabled for reading an 
writing to said encrypted identification tag (col. 9, lines 61-65). 

Regarding claim 11, Claus discloses wherein said digital processor platform 
(Plaza/reader) is operatively associated with an RFID reader for reading and writing to said 
encrypted identification tag (col. 9, line 61 - col. 10, line 12). 

Regarding claim 12, Claus discloses wherein said decryption algorithm is a DES 
decryption algorithm (col. 9, lines 51-52). 

Regarding claim 13, Claus discloses wherein said encryption key (secret code) is a final 
key based on a combination of said tag UID (Card ID) and a private key (secret algorithm, col. 9, 
lines 36-39). 

Regarding claim 1 5, Claus discloses generating a key (secret code) based in part or in 
whole on said UID (Card ID, col. 9, lines 36-39) code of one said tag (transponder), encrypting 
said user data with said key to derive encrypted user data (variable data frame, col. 9, line 61 - 
col. 10, line 12) for storage on said one tag (col. 9, lines 61-65), and decrypted encrypted user 
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data read from said one tag with said key (secret code, col. 9, line 40-60), such that a unique key 
(secret code) is generated for encryption and decryption of user data on each tag (col. 9, lines 36- 
39). 

Regarding claim 16, Claus discloses wherein said identification tags (transponders) are 
- RFID tags (col. 9, lines 24-25, col. 9, lines 21-25 & Fig. 3, #320). 

5. Claims 1, 3, 6, 8, 10, 13 & 15 are rejected under 35 U.S.C. 102(b) as being anticipated by 
European Patent Application EP 1 050 887 to Hirota et al. (Hirota). 

Regarding claim 1, Hirota discloses a method of encrypting identification tags (memory 
card, Tf84) having a data storage (ROM, f 67) for storing a fixed tag UID (medium ID, T[84) 
unique to each of said tags fl}67) and variable user data (content, 1f84), said tag UID (medium ID) 
and said user data (content) being readable by a tag reader (PC, f 84 & ^[99), said method 
comprising the steps of providing an identification tag (memory card, 1}84) having a permanent 
UID stored thereon (medium ID, ^[67), providing an encryption engine (CPU, Fig. 4 & ^[98(5)), 
operative for encrypting user data (content) with an encryption key (password, 1(98(5)), entering 
said UID (medium ID) to provide part or all of said encryption key fl}98(2)), entering user data 
(content) for encryption by said engine, encrypting said user data with said encryption key 
(password) to derive encrypted user data fl|98(5)) and storing said encrypted user data in said 
data storage of said identification tag fl|98(5)). 

Regarding claim 3, Hirota discloses wherein said encryption engine (PC) comprises an 
encryption algorithm running on a digital processor platform enabled for reading and writing to 
said data storage (H98(5)). 
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Regarding claim 6, Hirota discloses wherein said encryption key (password) is a final key 
based on a combination of said tag UID (medium ID) and a private key (master key, 1(98(3)). 

Regarding claim 8, Hirota discloses providing a decryption engine (PC, Fig. 4) operative 
for decrypting said encrypted user data with (1(99(4-5)) an encryption key (password, f99(5)), 
presenting an encrypted identification tag (memory card) for reading (1(99(2)), reading said tag 
UID (medium ID, 1(99(2)) and said encrypted user data (content, 1(99(5)) stored on said encrypted 
identification tag (memory card), providing said tag UID (medium ID) to said decryption engine 
for deriving said encryption key (extracting the password, 1(99(4)), providing said encrypted user 
data (encrypted content) to said decryption engine for decryption with said encryption key 
(password, f99(5)) and decrypting said encrypted user data with said decryption engine to derive 
decrypted user data (1(99(5)). 

Regarding claim 10, Hirota discloses wherein said encryption engine (PC) comprises an 
encryption algorithm running on a digital processor platform enabled for reading and writing to 
said data storage (1(98(5)). 

Regarding claim 13, Hirota discloses wherein said encryption key (password) is a final 
key based on a combination of said tag UID (medium ID) and a private key (master key, 1(98(3)). 

Regarding claim 15, Hirota discloses generating a key (password) based in part or in 
whole on said UID code of one said tag (medium ID of memory card, 1(98(2-3)), encrypting said 
user data (content) with said key (password) to derive encrypted user data for storage on said one 
tag (1(98(5)), and decrypting encrypted user data (content) read from said one tag with said key 
(password, 1(99(5)), such that a unique key is generated for encryption and decryption of user 
data on each tag (1(67 & 1(98(2-3)). 



Application/Control Number: 10/626,054 
Art Unit: 2134 



Page 7 



Claim Rejections - 35 USC § 103 

6. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

7. Claims 7 & 14 are rejected under 35 U.S.C. 103(a) as being unpatentable over Hirota, as 
applied to claims 6 & 13, in view of U.S. Patent Application Publication 2005/0004875 to 
Kontio et al. (Kontio). 

Regarding claims 7 & 14, Hirota lacks wherein the final key is derived by XORing said 
private key with said tag UID. However, Kontio teaches that in encrypting media content, it is 
known to derive the encryption key (final key) by XORing a media ID (unique to the media) 
with a key token fl|58), which protects the key. This is useful in joining the media with the 
specific tangible medium. Therefore, it would have been obvious to one having ordinary skill in 
the art at the time the invention was made to modify Hirota to derive the password by XORing 
the medium ID with the master key. One of ordinary skill in the art would have been motivated 
to perform such a modification to protect the password in a known manner and to join the 
content with the memory card. 



Conclusion 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Michael J. Simitoski whose telephone number is (571) 272-3841 . 
The examiner can normally be reached on Monday - Thursday, 6:45 a.m. - 4:15 p.m.. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kambiz Zand can be reached on (571) 272-381 1 . The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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